Job Title: Threat Detection Engineer (Splunk) Location: Brussels, Paris, London, or Amsterdam (8 Days per month on-site – You decide!) Duration: 1-Year (Extendable) Our client is a leading global financial services provider, supporting the post-trade infrastructure for capital markets. They play a key role in ensuring the smooth and secure settlement of securities transactions, working with major financial institutions worldwide. For their SOC team in the CISO division, they are hiring an external Threat Detection Engineer with Splunk experience on a contracting basis. What You’ll Do: Work with customers to define detection use cases Develop and test correlation rules, dashboards, and alerts Support log onboarding and CIM mapping Coach team members and review outputs Improve detection processes and documentation Manage a healthy backlog of detection work Experienced Required: Experience in development and maintenance of SIEM use cases, using Splunk Fluent in Splunk’s search processing language (SPL) Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security Experience creating and tuning correlation rules Good understanding of cybersecurity tools and concepts Excellent communication in English Splunk certifications preferred (Power User, Developer, Admin, ES Admin) Security certifications like CEH, GIAC, or CISSP are a plus Working Arrangements: Minimum of 8 days per month in the office required. Interested in hearing more or applying? Reach out TODAY to Luke Finn on 44 203 053 3723 / luke@next-ventures.com